The Ubisoft Corporate Security Program maintains a trusted, public channel for reporting security issues that affect Ubisoft’s corporate assets — for example, internet‑facing services, corporate web apps and APIs, partner/employee portals, official desktop and mobile applications, and related cloud/storage/CDN infrastructure. Our aim is to work with the security community to find and fix vulnerabilities before they impact employees, partners, customers, or corporate data. We welcome responsible, non‑disruptive testing and clear reports that include concise, reproducible steps and only the evidence necessary to demonstrate impact. Do not perform actions that harm availability, privacy, or other users; avoid extracting large data sets or accessing accounts you do not own. Do not attempt social engineering, physical intrusion, destructive testing (including DoS/DDoS), or any activity that could violate laws or program rules. When submitting an issue, include enough context and a proof‑of‑concept to enable replication while minimizing exposure of sensitive data. Our Security team will acknowledge submissions, triage them promptly, communicate status updates, and provide recognition in accordance with program guidelines. To report a vulnerability, please submit via Intigriti so our team can investigate and remediate the issue quickly. Note: This program covers corporate assets only. For in‑game vulnerabilities, please use the separate channels designated for game reports.